CVE-2020-10643

Опубликовано: 27 июл. 2020

Источник: nvd

CVSS3: 6.5

CVSS3: 5.4

CVSS2: 3.5

EPSS Низкий

Описание

An authenticated remote attacker could use specially crafted URLs to send a victim using PI Vision 2019 mobile to a vulnerable web page due to a known issue in a third-party component.

Ссылки

https://us-cert.cisa.gov/ics/advisories/icsa-20-133-02
Third Party Advisory
US Government Resource
https://us-cert.cisa.gov/ics/advisories/icsa-20-133-02
Third Party Advisory
US Government Resource

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:osisoft:pi_vision:2019:*:*:*:*:*:*:*

EPSS

Процентиль: 33%

0.0013

Низкий

6.5 Medium

CVSS3

5.4 Medium

CVSS3

3.5 Low

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-pc74-h374-5v7m

github

больше 3 лет назад

An authenticated remote attacker could use specially crafted URLs to send a victim using PI Vision 2019 mobile to a vulnerable web page due to a known issue in a third-party component.

EPSS

Процентиль: 33%

0.0013

Низкий

6.5 Medium

CVSS3

5.4 Medium

CVSS3

3.5 Low

CVSS2

Дефекты

CWE-79